Disk ImagesAvailable for: Apple TV 4K and Apple TV (4th generation)Impact: An application may be able to execute arbitrary code withkernel privilegesDescription: A memory corruption issue was addressed with improvedmemory handling.CVE-2018-4465: Pangu Team

KernelAvailable for: Apple TV 4K and Apple TV (4th generation)Impact: An attacker in a privileged position may be able to perform adenial of service attackDescription: A denial of service issue was addressed by removing thevulnerable code.CVE-2018-4460: Kevin Backhouse of Semmle Security Research Team

ProfilesAvailable for: Apple TV 4K and Apple TV (4th generation)Impact: An untrusted configuration profile may be incorrectlydisplayed as verifiedDescription: A certificate validation issue existed in configurationprofiles. This was addressed with additional checks.CVE-2018-4436: James Seeley @Code4iOS, Joseph S. of Wyong High School

ProfilesWe would like to acknowledge Luke Deshotels, Jordan Beichler, andWilliam Enck of North Carolina State University; Costin CarabaE andRAzvan Deaconescu of University POLITEHNICA of Bucharest for theirassistance.